Журнал «Современная Наука»

Russian (CIS)English (United Kingdom)
MOSCOW +7(495)-142-86-81

CURRENT STATUS AND DIRECTIONS FOR IMPROVING METHODS FOR DETECTING INFORMATION SECURITY INCIDENTS

Valeev Mikhail Vladimirovich  (postgraduate student of the Department of Information Security, Financial University under the Government of the Russian Federation)

The article proposes to consider the issues of unauthorized access to protected information in a local area network, the development of attack methods and the current state of intrusion detection systems at the network level. The paper considers the features of using the SIEM information security event collection and correlation system and the need to improve information protection methods. In this paper, the author presents an analysis of the main advantages and disadvantages of systems for preventing possible information security incidents and fulfilling state requirements in the field of protecting critical information infrastructure. In the course of the study, methods for detecting intrusions in the corporate segment of an information system are presented, models of a network and host intrusion detection system are presented. By classifying information security events received from various systems, it is possible to draw a conclusion about the state of the entire protected object in real time.

Keywords:intrusion detection system, information security, unauthorized access, information security software, SIEM systems methodology, source of information security events, behavioral analysis

 

Read the full article …



Citation link:
Valeev M. V. CURRENT STATUS AND DIRECTIONS FOR IMPROVING METHODS FOR DETECTING INFORMATION SECURITY INCIDENTS // Современная наука: актуальные проблемы теории и практики. Серия: Естественные и Технические Науки. -2023. -№07/2. -С. 33-40 DOI 10.37882/2223-2966.2023.7-2.04
LEGAL INFORMATION:
Reproduction of materials is permitted only for non-commercial purposes with reference to the original publication. Protected by the laws of the Russian Federation. Any violations of the law are prosecuted.
© ООО "Научные технологии"